Vulnerability Description
The UCC dedicated server for the Unreal engine, possibly 2003 and 2004, on Windows allows remote attackers to cause a denial of service (continuous beep and server slowdown) via a string containing many 0x07 characters in (1) a request to the images/ directory, (2) the Content-Type field, (3) a HEAD request, and possibly other unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Epic Games | Unreal Engine | 2003 |
References
- http://aluigi.org/adv/unrwebdos-adv.txt
- http://aluigi.org/poc/unrwebdos.zip
- http://secunia.com/advisories/26506Vendor Advisory
- http://securityreason.com/securityalert/3039
- http://www.securityfocus.com/archive/1/477026/100/0/threaded
- http://www.securityfocus.com/archive/1/478053/100/200/threaded
- http://www.securityfocus.com/archive/1/478064/100/200/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36103
- http://aluigi.org/adv/unrwebdos-adv.txt
- http://aluigi.org/poc/unrwebdos.zip
- http://secunia.com/advisories/26506Vendor Advisory
- http://securityreason.com/securityalert/3039
- http://www.securityfocus.com/archive/1/477026/100/0/threaded
- http://www.securityfocus.com/archive/1/478053/100/200/threaded
- http://www.securityfocus.com/archive/1/478064/100/200/threaded
FAQ
What is CVE-2007-4443?
CVE-2007-4443 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The UCC dedicated server for the Unreal engine, possibly 2003 and 2004, on Windows allows remote attackers to cause a denial of service (continuous beep and server slowdown) via a string containing ma...
How severe is CVE-2007-4443?
CVE-2007-4443 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-4443?
Check the references section above for vendor advisories and patch information. Affected products include: Epic Games Unreal Engine.